Category Archives: Ownership

Selling what isn’t yours

One profit model that seems to be working well is selling stuff that doesn’t belong to you.  Cuts your cost-of-goods-sold dramatically.

“Facebook Considered Charging for Access to User Data,” The Wall Street Journal, November 29, 2018 (online).  Facebook considered charging people to access user data.

Now, I guess that’s marginally different than letting third parties see the “Facebook” user data (i.e., the data of the users of Facebook) for free, in order to develop apps or whatever.  But isn’t it still the users’ information?  Oh, and it might be somewhat contrary to what the CEO said to Congress about Facebook’s policy of never selling user data.

Advertisements

Leave a comment

Filed under Access, Collect, Compliance, Controls, Corporation, Culture, Duty, Duty of Care, Governance, Information, Internal controls, Management, Oversight, Ownership, Ownership, Third parties, To report, Use, Value

Taking ownership

What’s the most effective way to let management know there’s a sexual harassment problem in your workplace?  Who owns the culture at your company?

“Google Workers Walk Out In Protest,” The Wall Street Journal, November 2, 2018 B1.  Thousands walked out in protest.

Certainly, a different vector for applying pressure; perhaps better than coming from the investors.  If there’s something wrong with your company’s culture, can you take action?  Is this limited to sexual harassment?  Is this evidence of harassment in any of the pending actions?

Leave a comment

Filed under Controls, Culture, Governance, Oversight, Ownership

Weapons

“Apple CEO Urges Action on Data Misuse,” The Wall Street Journal, October 25, 2018 B1.  Tim Cook wants GDPR-style privacy protections in the US.  Claims “[o]ur own information … is being weaponized against us with military efficiency.”

He went on to suggest that the data collection practices of some online advertising companies are the equivalent of government surveillance.

How do we wrest control of our information back again?  Or is privacy dead?  And do we believe that our federal legislature is competent to develop the necessary (and effective) legal controls and protections that true Governance requires?

Leave a comment

Filed under Access, Accuracy, Analytics, Controls, Corporation, Duty, Duty of Care, Governance, Government, Information, Oversight, Ownership, Ownership, Policy, Privacy, Technology, Third parties, Value

Email

“Yahoo, Bucking Industry, Scans Emails for Data to Sell,” The Wall Street Journal, August 29, 2018 A1.  Unlike its competition, Verizon scans your Yahoo and AOL emails and shares the data with advertisers trying to sell you stuff.

This blog focuses in part on Compliance with law and company policy and procedures.  Does one need to comply with the practices of others in the industry, even where that is not required?  Do “market forces” act as part of the Governance structure?

We already know that Yahoo feels it owns the data you exchange over their platform.  But telling others what sites you’ve visited is a bit different than telling them what you may have been mentioned in your email.

Leave a comment

Filed under Access, Compliance, Compliance (General), Controls, Governance, Information, Ownership, Ownership, Privacy

It’s not what you don’t say

“Hiring Hazard: Social Media,” The Wall Street Journal, August 6, 2018 B1.  What happens when you hire (or don’t hire) someone with a “history” of social media postings, some of which may now (or then, or both) be viewed as objectionable?

An editorial writer for a major newspaper is found to have written some racist comments.  A director gets booted from Disney for old tweets. Major league ball players get shamed.

Do the Europeans have it right?  Do you have a right to be forgotten?  Or are you stuck with what you said or wrote years ago, provided that it is preserved electronically?  You did say it, in preservable format.

Is this Governance (or self-governance)?  O the nature of Information?  Or Compliance with ever-evolving social mores?

Leave a comment

Filed under Access, Accuracy, Communications, Duty, Duty of Care, Governance, Ownership, Privacy

Gee, what could go wrong?

“Facebook Asks Banks for Customer Data,” The Wall Street Journal, August 7, 2018 A1. “[T]o offer new services to users,” Facebook asks banks for “detailed financial information about their customers.”

I can see what’s in it for Facebook, and maybe for the banks.  But isn’t this your information?  Shouldn’t you have some control what the banks do with it?  Are you comfortable with the controls the banks and Facebook will place on this information?  It might be convenient for you, but at what risk?

Do we remember Cambridge Analytica?  Will Facebook try to do this in Europe?

To whom do you complain?  Your elected representative?  Your bank?  The state or federal regulators?

1 Comment

Filed under Access, Controls, Corporation, Duty, Duty of Care, Governance, Information, Internal controls, Investor relations, IT, Oversight, Ownership, Privacy, Protect assets, Security, Third parties, Uncategorized, Who is in charge?

What you have, where you have it

A common starting point to information governance projects is to determine what information you have and where you have it.  Then you can start to manage it. But what happens if you don’t know what you have nor where you have it?

“Facebook Struggles to Find User Data,” The Wall Street Journal, June 28, 2018 B1. “The company can’t track where much of the [user] data went after it left the platform or figure out where is it now.”

A lot of the information is or was with app developers that are now out of business.  What happened to your/Facebook’s/their data?

Sure is easier to figure this out going forward than it is to figure out what happened between 2007 and 2015.  Especially if disclosure of some of that information is blocked by the government in far-off lands.  Or if the app developers don’t fancy having Facebook root through their servers and discovering their business secrets.  Or if Facebook doesn’t have a contractual right to get this information.

Sure would be easier if they’d had the proper controls in place at the time.

Leave a comment

Filed under Access, Controls, Corporation, Duty, Duty of Care, Governance, Government, Information, Internal controls, Oversight, Ownership, Ownership, Privacy, Protect assets, Security, Third parties, Vendors